http://wiki.mikrotik.com/wiki/DoS_attack_protection
syntax error in this rule plz help me !?!?!
/ip firewall filter add chain=forward protocol=tcp tcp-flags=syn connection-state=new \
action=jump jump-target=SYN-Protect comment="SYN Flood protect" disabled=yes
/ip firewall filter add chain=SYN-Protect protocol=tcp tcp-flags=syn limit=400,5 connection-state=new \
action=accept comment="" disabled=no
/ip firewall filter add chain=SYN-Protect protocol=tcp tcp-flags=syn connection-state=new \
action=drop comment="" disabled=no
The first rule is disabled
disabled=yes
syntax errror here
/ip firewall filter add chain=SYN-Protect protocol=tcp tcp-flags=syn limit=400,5 connection-state=new action=accept comment="" disabled=no
after 5
nxs02
4
im curious if u need that firewall filter, imo as long as u have default forward drop and client isolation than u are fine
if u can help me with syntax
sash7
6
syntax is ok, try to add manually, maybe you copy-paste?
jcvn
9
/ip firewall filter add chain=SYN-Protect protocol=tcp tcp-flags=syn limit=400,5:packet connection-state=new action=accept comment=“SYN Flood protect”
disabled=no
jcvn
10
/ip firewall filter add chain=SYN-Protect protocol=tcp tcp-flags=syn limit=400,5:packet connection-state=new action=accept comment=“SYN Flood protect”
disabled=no
